This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/iw99MEfgWCk8jzXEVkDUVL7mRVE.roa File: iw99MEfgWCk8jzXEVkDUVL7mRVE.roa (raw, json) Hash identifier: sLeHG7bJoAQLwEnzTf++99j3zH2x5tEIEtEUj3mnDCE= Subject key identifier: 8B:0F:7D:30:47:E0:58:29:3C:8F:35:C4:56:40:D4:54:BE:E6:45:51 Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d Certificate serial: 019B7C806134BBAE891D1E40EAC14673FD1B Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/iw99MEfgWCk8jzXEVkDUVL7mRVE.roa Signing time: Fri 02 Jan 2026 02:19:06 +0000 ROA not before: Fri 02 Jan 2026 02:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215730 IP address blocks: 94.159.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.mft rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:61:34:bb:ae:89:1d:1e:40:ea:c1:46:73:fd:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d Validity Not Before: Jan 2 02:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b0f7d3047e058293c8f35c45640d454bee64551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:59:7b:ff:23:d2:f8:99:49:b7:c9:4e:08:19: 06:49:93:d4:ea:a4:7f:10:d0:18:57:6b:ef:2e:f0: 1d:a5:3b:49:72:80:42:c7:bc:49:8a:13:63:7b:81: 1e:9e:bd:9e:c9:4f:0f:e7:17:c4:5e:99:47:01:57: da:0a:83:03:db:75:24:09:33:e3:29:fd:60:60:b8: 83:fc:2f:9c:31:6b:e8:17:91:f3:e1:7b:ac:61:25: bc:47:71:08:7d:84:ee:ed:f1:a1:b3:57:4c:c8:c7: c2:96:50:9b:6d:b7:02:c2:4b:f4:4b:2f:9a:f6:5a: d0:f1:d9:ba:ab:8d:f7:a8:e4:65:97:5a:97:f5:01: 62:ad:77:a6:a4:21:11:a3:3e:50:a0:b9:16:45:57: b9:75:d6:22:bd:fc:bf:4b:48:1a:6d:82:cb:68:b8: 93:92:cb:f1:ff:8b:c0:6d:d0:24:66:bd:9d:60:7b: dc:77:1c:62:d9:1a:fe:06:e0:85:b3:24:4b:92:7b: 65:5f:62:24:01:c9:8e:94:ba:bf:c1:72:d4:2c:9c: a1:bf:ba:f1:e2:06:e8:f9:04:bb:67:d3:46:47:2d: 39:ca:94:ad:1f:a6:d2:aa:8d:bd:61:a1:67:13:2a: ae:f3:66:16:a6:70:f1:a3:63:ee:38:70:8b:81:ad: cf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0F:7D:30:47:E0:58:29:3C:8F:35:C4:56:40:D4:54:BE:E6:45:51 X509v3 Authority Key Identifier: keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/iw99MEfgWCk8jzXEVkDUVL7mRVE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.159.96.0/20 Signature Algorithm: sha256WithRSAEncryption 15:6c:a9:c1:d3:e0:ae:b2:9c:07:ce:e8:f9:52:59:49:6f:67: 07:bc:cb:59:4b:f7:ea:64:9a:cc:7c:0c:b7:4a:64:14:6e:de: 32:46:e5:ab:d1:5b:86:a3:ed:4b:e3:7e:56:e1:74:35:f3:d0: 85:b1:9d:0c:ff:03:df:84:1b:97:d8:3d:cd:28:77:e6:a4:5f: ad:ab:3b:59:5b:81:9a:3b:97:b3:25:41:9f:dc:f3:7b:0c:aa: e1:62:9d:52:82:88:13:dd:1c:79:da:df:9b:75:3b:79:45:26: a4:48:db:3a:97:88:56:d4:f7:5f:f8:74:fa:06:76:f9:5f:0b: bc:ec:97:f0:22:a2:49:d9:00:7c:0c:6c:2e:c2:4d:8b:3e:64: 11:12:78:13:24:35:2d:c0:90:03:31:cc:d7:97:aa:79:88:e6: b3:07:e5:ed:13:54:8e:72:f2:aa:97:51:61:4d:04:fa:ac:d9: 77:4a:0a:79:2f:c8:8d:61:04:5b:2f:02:c4:e7:7d:c0:80:87: 30:cc:2c:f2:e0:64:d9:8e:8e:9a:af:af:99:88:ae:cf:62:5d: 60:c0:0d:00:62:a1:85:16:ab:b9:07:32:ee:06:f6:71:6a:0f: 14:5e:69:91:99:3e:95:0b:f0:e7:f2:5b:b8:d6:0e:ec:52:38: 64:8a:9c:f8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gGE0u66JHR5A6sFGc/0bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2FlNzU5MmNhNTI0OTFkYzE2NmEzMGZlMTQ3N2Q3MTJi ZDQ2NWQwHhcNMjYwMTAyMDIxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjBmN2QzMDQ3ZTA1ODI5M2M4ZjM1YzQ1NjQwZDQ1NGJlZTY0NTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1l7/yPS+JlJt8lOCBkGSZPU6qR/ ENAYV2vvLvAdpTtJcoBCx7xJihNje4Eenr2eyU8P5xfEXplHAVfaCoMD23UkCTPj Kf1gYLiD/C+cMWvoF5Hz4XusYSW8R3EIfYTu7fGhs1dMyMfCllCbbbcCwkv0Sy+a 9lrQ8dm6q433qORll1qX9QFirXempCERoz5QoLkWRVe5ddYivfy/S0gabYLLaLiT ksvx/4vAbdAkZr2dYHvcdxxi2Rr+BuCFsyRLkntlX2IkAcmOlLq/wXLULJyhv7rx 4gbo+QS7Z9NGRy05ypStH6bSqo29YaFnEyqu82YWpnDxo2PuOHCLga3PWwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIsPfTBH4FgpPI81xFZA1FS+5kVRMB8GA1UdIwQY MBaAFCl651kspSSR3BZqMP4Ud9cSvUZdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1hybldTeWxKSkhjRm1vd19oUjMxeEs5UmwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS80OGUxZTgtMzI4ZC00ZjgyLTkzOTgt MzkxMGE1OWExMTIxLzEvaXc5OU1FZmdXQ2s4anpYRVZrRFVWTDdtUlZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS80OGUxZTgtMzI4ZC00ZjgyLTkzOTgtMzkxMGE1OWExMTIx LzEvS1hybldTeWxKSkhjRm1vd19oUjMxeEs5UmwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEXp9gMA0G CSqGSIb3DQEBCwUAA4IBAQAVbKnB0+CuspwHzuj5UllJb2cHvMtZS/fqZJrMfAy3 SmQUbt4yRuWr0VuGo+1L435W4XQ189CFsZ0M/wPfhBuX2D3NKHfmpF+tqztZW4Ga O5ezJUGf3PN7DKrhYp1SgogT3Rx52t+bdTt5RSakSNs6l4hW1Pdf+HT6Bnb5Xwu8 7JfwIqJJ2QB8DGwuwk2LPmQREngTJDUtwJADMczXl6p5iOazB+XtE1SOcvKql1Fh TQT6rNl3Sgp5L8iNYQRbLwLE533AgIcwzCzy4GTZjo6ar6+ZiK7PYl1gwA0AYqGF Fqu5BzLuBvZxag8UXmmRmT6VC/Dn8lu41g7sUjhkipz4 -----END CERTIFICATE-----Generated at Sun Jan 25 16:38:11 2026 by rpki-client